C Exploits
3,631 exploits tracked across all sources.
Microsoft SQL Server 7.0 - Remote Denial of Service (2)
by Sebastien Tricaud
Microsoft SQL Server 7.0 - Remote Denial of Service (1)
by securma massine
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by M4Z3R
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Ken Hollis
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Ken Hollis
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Coolio
HP-UX B.11.00 B.11.04 B.11.11 B.11.23 - Denial of Service via Rose Attack
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
by Coolio
myserver 0.7.1 - Denial of Service via Long HTTP POST Request
myServer 0.7.1 allows remote attackers to cause a denial of service (crash) via a long HTTP POST request in a View=Logon operation to index.html.
by Tom Ferris
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by John Bissell
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by ATmaCA
PopMessenger 1.60 - Denial of Service via Invalid Base64 Characters
The Base64 function in PopMessenger 1.60 (before 20 Sep 2004) and earlier allows remote attackers to cause a denial of service (application crash) via invalid characters in a message, which causes several alert dialogs to be displayed and leads to a crash.
by Luigi Auriemma
Microsoft .NET Framework - Remote Code Execution via JPEG COM Field Length Overflow
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
by FoToZ
MDaemon 6.5.1 - Denial of Service via Long SAML/SOML/SEND/MAIL or LIST Command
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
LeadMind Pop Messenger 1.60 - Illegal Character Remote Denial of Service
by Luigi Auriemma
latex2rtf 1.9.15 - Buffer Overflow via expandmacro Function
Multiple buffer overflows in LaTeX2rtf 1.9.15, and possibly other versions, allow remote attackers to execute arbitrary code via (1) the expandmacro function, and possibly (2) Environments and (3) TranslateCommand.
by D. J. Bernstein
sudo 1.6.8 - Arbitrary File Read via sudoedit Symlink Attack
sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.
by Angelo Rosiello
Impressions Games Lords of the Realm III - Nickname Remote Denial of Service
by Luigi Auriemma
Pigeon Server <= 3.02.0143 - Denial of Service via Long Login Name
Pigeon Server 3.02.0143 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a long login name sent to port 3103.
by Luigi Auriemma
MDaemon 6.5.1 - Denial of Service via Long SAML/SOML/SEND/MAIL or LIST Command
Multiple buffer overflows in MDaemon 6.5.1 allow remote attackers to cause a denial of service (application crash) via a long (1) SAML, SOML, SEND, or MAIL command to the SMTP server or (2) LIST command to the IMAP server.
by D_BuG
Serv-U File Server 4.x-5.x - Denial of Service via STOU Command with MS-DOS Device Name
Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQUE (STOU) command with an MS-DOS device name argument such as (1) COM1, (2) LPT1, (3) PRN, or (4) AUX.
by str0ke
BlackJumboDog 3.x - Remote Code Execution via Long FTP Commands
Buffer overflow in BlackJumboDog 3.x allows remote attackers to execute arbitrary code via long FTP commands such as (1) USER, (2) PASS, (3) RETR,(4) CWD, (5) XMKD, and (6) XRMD.
by Delikon
Citadel/UX <= 6.23 - Denial of Service via Long Username
Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username.
by Nebunu
By Source